Skip to content

Cherry-picks for v2.11.11-RC.1#7480

Merged
neilalexander merged 31 commits intorelease/v2.11.11from
backports/v2.11.11-RC.1
Oct 28, 2025
Merged

Cherry-picks for v2.11.11-RC.1#7480
neilalexander merged 31 commits intorelease/v2.11.11from
backports/v2.11.11-RC.1

Conversation

@neilalexander
Copy link
Copy Markdown
Member

@neilalexander neilalexander commented Oct 28, 2025
edited
Loading

Includes the following:

Signed-off-by: Neil Twigg neil@nats.io

neilalexander and others added 29 commits October 28, 2025 11:24
@neilalexander
Fix race conditions and potential panics in JS API endpoint meta hand…
fbaeddb 
…ling

Signed-off-by: Neil Twigg <neil@nats.io>
@MauriceVanVeen @neilalexander
[FIXED] EraseMsg lost tombstones
dd4d534 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@MauriceVanVeen @neilalexander
[FIXED] Preserve last seq tombstone
5f5e9d1 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@MauriceVanVeen @neilalexander
[FIXED] Clean up empty blocks when selecting next first
ad77d37 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@neilalexander
Use optional sync when writing TTL and scheduling state in filestore
5c51e52 
Signed-off-by: Neil Twigg <neil@nats.io>
@neilalexander
Always use temporary staging for filestore meta file writes
1978dbd 
Signed-off-by: Neil Twigg <neil@nats.io>
@MauriceVanVeen @neilalexander
[FIXED] Mirror consumer data race
f14e1ee 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@MauriceVanVeen @neilalexander
[FIXED] Stream desync after out-of-order SkipMsg
5596da3 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@MauriceVanVeen @neilalexander
[FIXED] Filestore detect delete gap with last SkipMsg
d2b36b2 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@MauriceVanVeen @neilalexander
[FIXED] Filestore don't add deletes for empty block with SkipMsgs
b1c5612 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@MauriceVanVeen @neilalexander
[IMPROVED] NRG: Peer activity tracking
824f669 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@neilalexander
FIPS 140-3 mode support
a5a6181 
When enabling FIPS 140-3 mode with `GODEBUG=gofips=X` on supported platforms,
the following restrictions are made to allow NATS to function:

1. `auth_callout` cannot be configured and will error at startup if it is;
2. `chacha` filestore encryption mode cannot be configured and will
   error at startup if it is;
3. `X25519` is removed from the default curve preferences;
4. TLS handshakes that require non-FIPS-compliant algorithms will fail.

Signed-off-by: Neil Twigg <neil@nats.io>
@neilalexander
Update dependencies
0507dbb 
Signed-off-by: Neil Twigg <neil@nats.io>
@MauriceVanVeen @neilalexander
NRG: Parallel catchups can truncate committed
5fd8ff1 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@rodneyosodo @neilalexander
feat: add riscv64 support
eea380a 
Signed-off-by: Rodney Osodo <socials@rodneyosodo.com>
@neilalexander
Update to Go 1.25.3/1.24.9
c098cac 
Signed-off-by: Neil Twigg <neil@nats.io>
@MauriceVanVeen @neilalexander
[IMPROVED] JSZ Raft leader stats
8de5892 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@MauriceVanVeen @neilalexander
[FIXED] Filestore unlock when message erase fails
02fc0ce 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@neilalexander
Tweak cache expiry in firstMatching or firstMatchingMulti
f5389c7 
The first load of the last sequence via `firstMatching` or `firstMatchingMulti`
will still continue to flag `expireOk`, as though we're optimising for the linear
scan case, but if it becomes apparent that we are continuously reloading the same
last sequence over and over again in this way, don't set `expireOk` or we'll just
keep expiring and reloading the cache each time.

Signed-off-by: Neil Twigg <neil@nats.io>
@roeschter @neilalexander
Improved warning for Observer mode
b0c3be1 
Signed-off-by: Michael Röschter <michael@roeschter.de>
@kozlovic @neilalexander
[FIXED] Message Tracing: Hop header set properly per gateway
4659478 
Setting the "hop" header for each gateway could cause header
corruption. This is now fixed.

A test dealing with gateway has been improved to include more than
one gateway, which would have demonstrated the issue. The test now
passes and ensures that the hop is different per gateway.

Related to #7442

Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
@MauriceVanVeen @neilalexander
[IMPROVED] Filestore MaxBytes/Msgs update performance
a3d6618 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@MauriceVanVeen @neilalexander
[FIXED] Header search without alloc & bug fixes
df98c27 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@MauriceVanVeen @neilalexander
[FIXED] Consumer send 404 No Messages on EOS
9cdd19f 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@MauriceVanVeen @neilalexander
(2.14) [FIXED] Consumer send 404 No Messages on EOS after delivering …
3970d31 
…messages

Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@neilalexander
Update Go dependencies
3e89a09 
Signed-off-by: Neil Twigg <neil@nats.io>
@neilalexander
Update GHA dependencies
865a4cf 
Signed-off-by: Neil Twigg <neil@nats.io>
@alexbozhenko @neilalexander
add expvarz
e6fe3ce 
Signed-off-by: Alex Bozhenko <alexbozhenko@gmail.com>
@MauriceVanVeen @neilalexander
[FIXED] NRG: Always only report leader after noop-entry
cc123e4 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@neilalexander neilalexander changed the title Cherry-picks for v2.11.1-RC.1 Cherry-picks for v2.11.11-RC.1 Oct 28, 2025
MauriceVanVeen
MauriceVanVeen approved these changes Oct 28, 2025
View reviewed changes
Copy link
Copy Markdown
Member

@MauriceVanVeen MauriceVanVeen left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

neilalexander and others added 2 commits October 28, 2025 17:09
@neilalexander
Add meta_compact option to control JetStream meta group compaction/…
37f1e0e 
…snapshotting

Signed-off-by: Neil Twigg <neil@nats.io>
@MauriceVanVeen @neilalexander
[FIXED] Default to allowing binary stream snapshots
36fddba 
Signed-off-by: Maurice van Veen <github@mauricevanveen.com>
@neilalexander neilalexander force-pushed the backports/v2.11.11-RC.1 branch from 3d3edf9 to 36fddba Compare October 28, 2025 17:09
@neilalexander neilalexander marked this pull request as ready for review October 28, 2025 17:46
@neilalexander neilalexander requested a review from a team as a code owner October 28, 2025 17:46
wallyqs
wallyqs approved these changes Oct 28, 2025
View reviewed changes
Copy link
Copy Markdown
Member

@wallyqs wallyqs left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@neilalexander neilalexander merged commit 2c24fea into release/v2.11.11 Oct 28, 2025
69 of 70 checks passed
@neilalexander neilalexander deleted the backports/v2.11.11-RC.1 branch October 28, 2025 17:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@wallyqs wallyqs wallyqs approved these changes

@MauriceVanVeen MauriceVanVeen MauriceVanVeen approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

7 participants

@neilalexander @wallyqs @MauriceVanVeen @rodneyosodo @roeschter @kozlovic @alexbozhenko